`transfer` function in RToken contract applies scaling 2 times, leading to wrong amount of tokens transferred.
Summary
Current design seems to choose to apply scaling in _update function. Indeed, mint and burn functions pass to _mint and _burn functions the amount of underlying asset. Then, the overridden _update function applies the scaling to get the amount of interest-bearing token before minting or burning.
The problem is that transfer first applies a scaling, and then calls super.transfer which will call _update, applying a second scaling. This is incorrect, leading to excess scaling, transferring less tokens than expected while transaction is successful for a given amount passed as argument.
Vulnerability Details
Impact
The impact of this vulnerability is high as it leads to systematic transfers of less tokens than expected with the transfer function. This might break future integration of RAAC protocol.
Tools Used
Manual review.
Recommendations
Ensure that only one division scaling is applied: remove scaling in transfer and transferFrom functions and only apply the scaling in _update function.
Lead Judging Commences
RToken::transfer and transferFrom double-scale amounts by dividing in both external functions and _update, causing users to transfer significantly less than intended
RToken::transfer and transferFrom double-scale amounts by dividing in both external functions and _update, causing users to transfer significantly less than intended
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.